package com.ly.erms.modular.system.controller;

import java.io.File;
import java.util.Date;
import java.util.List;
import java.util.Map;
import java.util.UUID;

import javax.annotation.Resource;
import javax.naming.NoPermissionException;
import javax.validation.Valid;

import org.springframework.stereotype.Controller;
import org.springframework.ui.Model;
import org.springframework.validation.BindingResult;
import org.springframework.web.bind.annotation.PathVariable;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RequestMethod;
import org.springframework.web.bind.annotation.RequestParam;
import org.springframework.web.bind.annotation.RequestPart;
import org.springframework.web.bind.annotation.ResponseBody;
import org.springframework.web.multipart.MultipartFile;

import com.ly.erms.common.annotion.BussinessLog;
import com.ly.erms.common.annotion.Permission;
import com.ly.erms.common.constant.Const;
import com.ly.erms.common.constant.dicmap.UserDict;
import com.ly.erms.common.constant.factory.ConstantFactory;
import com.ly.erms.common.constant.state.ManagerStatus;
import com.ly.erms.common.exception.BizExceptionEnum;
import com.ly.erms.common.persistence.dao.UserMapper;
import com.ly.erms.common.persistence.model.User;
import com.ly.erms.config.properties.ErmsProperties;
import com.ly.erms.core.base.controller.BaseController;
import com.ly.erms.core.base.tips.Tip;
import com.ly.erms.core.datascope.DataScope;
import com.ly.erms.core.db.Db;
import com.ly.erms.core.exception.ErmsException;
import com.ly.erms.core.log.LogObjectHolder;
import com.ly.erms.core.shiro.ShiroKit;
import com.ly.erms.core.shiro.ShiroUser;
import com.ly.erms.core.util.ToolUtil;
import com.ly.erms.modular.system.dao.UserMgrDao;
import com.ly.erms.modular.system.factory.UserFactory;
import com.ly.erms.modular.system.transfer.UserDto;
import com.ly.erms.modular.system.warpper.UserWarpper;

/**
 * 系统管理员控制器
 * 
 * @author liuyang
 * @date 2018年1月8日
 */
@Controller
@RequestMapping("/mgr")
public class UserMgrController extends BaseController {
	private static String PREFIX = "/system/user/";

	@Resource
	private ErmsProperties ermsproperties;

	@Resource
	private UserMgrDao managerDao;

	@Resource
	private UserMapper userMapper;

	/**
	 * 跳转到查看管理员列表的页面
	 */
	@RequestMapping("")
	public String index() {
		return PREFIX + "user.html";
	}

	/**
	 * 跳转到用户添加页面
	 */
	@RequestMapping("/user_add")
	public String addView() {
		return PREFIX + "user_add.html";
	}

	/**
	 * 跳转到编辑管理员页面
	 */
	@Permission
	@RequestMapping("/user_edit/{userId}")
	public String userEdit(@PathVariable Integer userId, Model model) {
		if (ToolUtil.isEmpty(userId)) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}
		assertAuth(userId);
		User user = this.userMapper.selectById(userId);
		model.addAttribute(user);
		model.addAttribute("roleName", ConstantFactory.me().getRoleName(user.getRoleid()));
		model.addAttribute("deptName", ConstantFactory.me().getDeptName(user.getDeptid()));
		LogObjectHolder.me().set(user);
		return PREFIX + "user_edit.html";
	}

	/**
	 * 查询管理员列表
	 */
	@RequestMapping("/list")
	@Permission
	@ResponseBody
	public Object list(@RequestParam(required = false) String name, @RequestParam(required = false) String beginTime,
			@RequestParam(required = false) String endTime, @RequestParam(required = false) Integer deptid) {
		if (ShiroKit.isAdmin()) {
			List<Map<String, Object>> users = managerDao.selectUsers(null, name, beginTime, endTime, deptid);
			return new UserWarpper(users).warp();
		} else {
			DataScope dataScope = new DataScope(ShiroKit.getDeptDataScope());
			List<Map<String, Object>> users = managerDao.selectUsers(dataScope, name, beginTime, endTime, deptid);
			return new UserWarpper(users).warp();
		}
	}

	/**
	 * 跳转到角色分配页面
	 */
	@Permission
	@RequestMapping("/role_assign/{userId}")
	public String roleAssign(@PathVariable Integer userId, Model model) {
		if (ToolUtil.isEmpty(userId)) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}
		User user = (User) Db.create(UserMapper.class).selectOneByCon("id", userId);
		model.addAttribute("userId", userId);
		model.addAttribute("userAccount", user.getAccount());
		return PREFIX + "user_roleassign.html";
	}

	/**
	 * 跳转到查看用户详情页面
	 */
	@RequestMapping("/user_info")
	public String userInfo(Model model) {
		Integer userId = ShiroKit.getUser().getId();
		if (ToolUtil.isEmpty(userId)) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}
		User user = this.userMapper.selectById(userId);
		model.addAttribute(user);
		model.addAttribute("roleName", ConstantFactory.me().getRoleName(user.getRoleid()));
		model.addAttribute("deptName", ConstantFactory.me().getDeptName(user.getDeptid()));
		LogObjectHolder.me().set(user);
		return PREFIX + "user_view.html";
	}

	/**
	 * 跳转到修改密码界面
	 */
	@RequestMapping("/user_chpwd")
	public String chPwd() {
		return PREFIX + "user_chpwd.html";
	}

	/**
	 * 修改当前用户的密码
	 */
	@RequestMapping("/changePwd")
	@ResponseBody
	public Object changePwd(@RequestParam String oldPwd, @RequestParam String newPwd, @RequestParam String rePwd) {
		if (!newPwd.equals(rePwd)) {
			throw new ErmsException(BizExceptionEnum.TWO_PWD_NOT_MATCH);
		}
		Integer userId = ShiroKit.getUser().getId();
		User user = userMapper.selectById(userId);
		String oldMd5 = ShiroKit.md5(oldPwd, user.getSalt());
		if (user.getPassword().equals(oldMd5)) {
			String newMd5 = ShiroKit.md5(newPwd, user.getSalt());
			user.setPassword(newMd5);
			user.updateById();
			return SUCCESS_TIP;
		} else {
			throw new ErmsException(BizExceptionEnum.OLD_PWD_NOT_RIGHT);
		}
	}

	/**
	 * 添加管理员
	 */
	@RequestMapping("/add")
	@BussinessLog(value = "添加管理员", key = "account", dict = UserDict.class)
	@Permission(Const.ADMIN_NAME)
	@ResponseBody
	public Tip add(@Valid UserDto user, BindingResult result) {
		if (result.hasErrors()) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}

		// 判断账号是否重复
		User theUser = managerDao.getByAccount(user.getAccount());
		if (theUser != null) {
			throw new ErmsException(BizExceptionEnum.USER_ALREADY_REG);
		}

		// 完善账号信息
		user.setSalt(ShiroKit.getRandomSalt(5));
		user.setPassword(ShiroKit.md5(user.getPassword(), user.getSalt()));
		user.setStatus(ManagerStatus.OK.getCode());
		user.setCreatetime(new Date());

		this.userMapper.insert(UserFactory.createUser(user));
		return SUCCESS_TIP;
	}

	/**
	 * 修改管理员
	 *
	 * @throws NoPermissionException
	 */
	@RequestMapping("/edit")
	@BussinessLog(value = "修改管理员", key = "account", dict = UserDict.class)
	@ResponseBody
	public Tip edit(@Valid UserDto user, BindingResult result) throws NoPermissionException {
		if (result.hasErrors()) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}
		if (ShiroKit.hasRole(Const.ADMIN_NAME)) {
			this.userMapper.updateById(UserFactory.createUser(user));
			return SUCCESS_TIP;
		} else {
			assertAuth(user.getId());
			ShiroUser shiroUser = ShiroKit.getUser();
			if (shiroUser.getId().equals(user.getId())) {
				this.userMapper.updateById(UserFactory.createUser(user));
				return SUCCESS_TIP;
			} else {
				throw new ErmsException(BizExceptionEnum.NO_PERMITION);
			}
		}
	}

	/**
	 * 删除管理员（逻辑删除）
	 */
	@RequestMapping("/delete")
	@BussinessLog(value = "删除管理员", key = "userId", dict = UserDict.class)
	@Permission
	@ResponseBody
	public Tip delete(@RequestParam Integer userId) {
		if (ToolUtil.isEmpty(userId)) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}
		// 不能删除超级管理员
		if (userId.equals(Const.ADMIN_ID)) {
			throw new ErmsException(BizExceptionEnum.CANT_DELETE_ADMIN);
		}
		assertAuth(userId);
		this.managerDao.setStatus(userId, ManagerStatus.DELETED.getCode());
		return SUCCESS_TIP;
	}

	/**
	 * 查看管理员详情
	 */
	@RequestMapping("/view/{userId}")
	@ResponseBody
	public User view(@PathVariable Integer userId) {
		if (ToolUtil.isEmpty(userId)) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}
		assertAuth(userId);
		return this.userMapper.selectById(userId);
	}

	/**
	 * 重置管理员的密码
	 */
	@RequestMapping("/reset")
	@BussinessLog(value = "重置管理员密码", key = "userId", dict = UserDict.class)
	@Permission(Const.ADMIN_NAME)
	@ResponseBody
	public Tip reset(@RequestParam Integer userId) {
		if (ToolUtil.isEmpty(userId)) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}
		assertAuth(userId);
		User user = this.userMapper.selectById(userId);
		user.setSalt(ShiroKit.getRandomSalt(5));
		user.setPassword(ShiroKit.md5(Const.DEFAULT_PWD, user.getSalt()));
		this.userMapper.updateById(user);
		return SUCCESS_TIP;
	}

	/**
	 * 冻结用户
	 */
	@RequestMapping("/freeze")
	@BussinessLog(value = "冻结用户", key = "userId", dict = UserDict.class)
	@Permission(Const.ADMIN_NAME)
	@ResponseBody
	public Tip freeze(@RequestParam Integer userId) {
		if (ToolUtil.isEmpty(userId)) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}
		// 不能冻结超级管理员
		if (userId.equals(Const.ADMIN_ID)) {
			throw new ErmsException(BizExceptionEnum.CANT_FREEZE_ADMIN);
		}
		assertAuth(userId);
		this.managerDao.setStatus(userId, ManagerStatus.FREEZED.getCode());
		return SUCCESS_TIP;
	}

	/**
	 * 解除冻结用户
	 */
	@RequestMapping("/unfreeze")
	@BussinessLog(value = "解除冻结用户", key = "userId", dict = UserDict.class)
	@Permission(Const.ADMIN_NAME)
	@ResponseBody
	public Tip unfreeze(@RequestParam Integer userId) {
		if (ToolUtil.isEmpty(userId)) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}
		assertAuth(userId);
		this.managerDao.setStatus(userId, ManagerStatus.OK.getCode());
		return SUCCESS_TIP;
	}

	/**
	 * 分配角色
	 */
	@RequestMapping("/setRole")
	@BussinessLog(value = "分配角色", key = "userId,roleIds", dict = UserDict.class)
	@Permission(Const.ADMIN_NAME)
	@ResponseBody
	public Tip setRole(@RequestParam("userId") Integer userId, @RequestParam("roleIds") String roleIds) {
		if (ToolUtil.isOneEmpty(userId, roleIds)) {
			throw new ErmsException(BizExceptionEnum.REQUEST_NULL);
		}
		// 不能修改超级管理员
		if (userId.equals(Const.ADMIN_ID)) {
			throw new ErmsException(BizExceptionEnum.CANT_CHANGE_ADMIN);
		}
		assertAuth(userId);
		this.managerDao.setRoles(userId, roleIds);
		return SUCCESS_TIP;
	}

	/**
	 * 上传图片(上传到项目的webapp/static/img)
	 */
	@RequestMapping(method = RequestMethod.POST, path = "/upload")
	@ResponseBody
	public String upload(@RequestPart("file") MultipartFile picture) {
		String pictureName = UUID.randomUUID().toString() + ".jpg";
		try {
			String fileSavePath = ermsproperties.getFileUploadPath();
			picture.transferTo(new File(fileSavePath + pictureName));
		} catch (Exception e) {
			throw new ErmsException(BizExceptionEnum.UPLOAD_ERROR);
		}
		return pictureName;
	}

	/**
	 * 判断当前登录用户是否有操作这个用户的权限
	 */
	private void assertAuth(Integer userId) {
		if (ShiroKit.isAdmin()) {
			return;
		}
		List<Integer> deptDataScope = ShiroKit.getDeptDataScope();
		User user = this.userMapper.selectById(userId);
		Integer deptid = user.getDeptid();
		if (deptDataScope.contains(deptid)) {
			return;
		} else {
			throw new ErmsException(BizExceptionEnum.NO_PERMITION);
		}
	}
}
